"Breach at Eye Care Software Vendor Hits Millions of Patients"

The personal information of millions of individuals may have been stolen by adversaries due to a data breach at Eye Care Leaders.  The Durham, North Carolina-based company, which sells eye care management software solutions, claims to work with more than 9,000 ophthalmologists and optometrists.  At least 23 of these eye care providers have been impacted by a data breach that Eye Care Leaders disclosed in December 2021.  The company took down the compromised systems within 24 hours after the breach was detected, but not before the attackers accessed databases and files containing patient records.  Potentially compromised information included names, addresses, birth dates, gender, phone numbers, email addresses, driver’s license numbers, health insurance information, medical record numbers, Social Security numbers, and eye care-related medical information.  During the forensic investigation, it was revealed that the databases and files compromised as part of the incident did not include credit card or financial information.  Approximately 2.2 million patients were potentially compromised in the Eye Care Leaders data breach.  However, given the large number of customers the vendor claims to have, the number of impacted individuals could be much higher.

SecurityWeek reports: "Breach at Eye Care Software Vendor Hits Millions of Patients"